The application server, when categorized as a high availability system within RMF, must be in a high-availability (HA) cluster.
An XCCDF Rule
Description
<VulnDiscussion>A MAC I system is a system that handles data vital to the organization's operational readiness or effectiveness of deployed or contingency forces. A MAC I system must maintain the highest level of integrity and availability. By HA clustering the application server, the hosted application and data are given a platform that is load-balanced and provided high-availability.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-222995r879806_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
From the Tomcat server as a privileged user, modify the $CATALINA_BASE/conf/server.xml file.
Uncomment the "<Cluster/> object and configure the system into a cluster as per the Tomcat clustering documentation provided at the Tomcat website.
https://tomcat.apache.org/tomcat-9.0-doc/config/cluster.html